Руководство По Проектированию для Cisco Cisco Aironet 350 Mini-PCI Wireless LAN Client Adapter
7-6
Enterprise Mobility 4.1 Design Guide
OL-14435-01
Chapter 7 Cisco Unified Wireless Hybrid REAP
Hybrid REAP
Figure 7-5
Authentication-Local/Switch-Local WLAN
Note
All 802.11 authentication and association processing occurs at the H-REAP, regardless of which
operational mode the AP is in. When in Connected mode, the H-REAP forwards all
association/authentication information to the WLC. When in Standalone mode, the AP cannot notify the
WLC of such events, which is why WLANs that make use of central authentication/switching methods
are unavailable.
operational mode the AP is in. When in Connected mode, the H-REAP forwards all
association/authentication information to the WLC. When in Standalone mode, the AP cannot notify the
WLC of such events, which is why WLANs that make use of central authentication/switching methods
are unavailable.
The hybrid-REAP access point maintains client connectivity for local switched WLANs after entering
standalone mode. However, after the access point re-establishes a connection with the WLC, it
disassociates all existing clients, applies updated configuration information from the WLC (if
applicable), and re-allows client connectivity.
Applications
With its expanded capabilities, the H-REAP AP offers greater flexibility in how it can be deployed, such
as:
as:
•
Branch Wireless Connectivity
•
Branch Guest Access
•
Public WLAN Hotspot
Branch Wireless Connectivity
The primary goal of REAP and H-REAP is to address the wireless connectivity needs in branch
locations, permitting wireless user traffic to be terminated locally rather than be tunneled across the
WAN to a central WLC.
locations, permitting wireless user traffic to be terminated locally rather than be tunneled across the
WAN to a central WLC.
Because H-REAP can map individual WLANs to specific 802.1Q VLANs, branch locations can more
effectively implement segmentation, access control, and QoS policies on a per-WLAN basis. See
effectively implement segmentation, access control, and QoS policies on a per-WLAN basis. See
.
Centralized
WLAN Controller
Branch
Servers
AAA
WCS
LWAPP
Branch
190698
Corporate Central
Local Auth
Local Switched Data
LWAPP Control
Local Switched Data
LWAPP Control
dot1q
Existing
User
New
User
802.1x
H-REAP
Standalone
Mode
WEP, Shared
WPA/2 - PSK
WPA/2 - PSK
User Data
Local Switched User Data
LWAPP Control